Networking Flashcards
Amazon VPC
Logically isolated AWS Cloud section
VPC Purpose
Launch AWS resources in defined virtual network. Establish boundaries for AWS resources.
Resource Accessibility
Public-facing or private resources
Subnets Explanation
Public and private resource groupings.
Subnets in VPC
Ranges of IP addresses
Coffee Shop Analogy VPC
Cashiers in public, baristas in private subnet
VPC Definition
AWS private network
Resource Placement
EC2, ELBs inside VPC
Subnets and Grouping
Grouping: Resources grouped in subnets
Networking Rules
Rules: Control resource accessibility
Traffic Control
Control: Public or private availability.
Internet Gateway (IGW)
IGW: Allows internet traffic flow.
Internet Gateway Analogy
Analogy: IGW like a front door for customers.
Virtual Private Gateway
Private Gateway: Allows VPN connection.
VPN Connection Analogy
Analogy: Private bus route for approved network.
AWS Direct Connect
Direct Connect: Private, dedicated fiber connection.
Direct Connect Benefits
Benefits: Low latency, high security.
AWS Direct Connect Analogy
Analogy: Magic doorway for direct connection.
Multiple Gateway Types
Types: One VPC, multiple gateways for different resources.
Direct Connect Partner Involvement
Involvement: Partner assists in establishing connection.
Regulatory Compliance
Compliance: Direct Connect meets high regulatory needs.
VPC Organization
Organization: Resources in subnets
Subnet Definition
Subnet: VPC section with EC2 instances
Internet Gateway Purpose
Purpose: Allow public internet access.
Internet Gateway Connection
Connection: Between VPC and internet.
No Internet Gateway Implication
Implication: No access without internet gateway.
Virtual Private Gateway Purpose
Purpose: Access private VPC resources.
Virtual Private Gateway Analogy
Analogy: Internet as a road with a bodyguard.
Bodyguard Role in Analogy
Role: VPN connection, extra protection
VPN Connection Encryption
Encryption: Protects internet traffic.
Protected Internet Traffic
Protection: Enabled by virtual private gateway.
Traffic Jams Possibility
Possibility: Shared road, potential jams.
Corporate Data Center Connection
Connection: VPN to virtual private gateway.
VPN Connection Approval
Approval: Traffic allowed from approved networks.
AWS Direct Connect Purpose
Purpose: Dedicated connection to data center.
Apartment Building Analogy
Analogy: Dedicated hallway for residents.
Residents’ Exclusive Access
Access: Exclusive, no public road usage.
AWS Direct Connect Benefits
Benefits: Reduce costs, increase bandwidth.
Network Traffic Flow
Flow: Dedicated private connection usage.
AWS Security Tools
Tools: Network hardening, app security, identity, DDoS prevention, encryption.
Subnet Purpose
Purpose: Control access to gateways.
Subnet Traffic Permissions
Permissions: Controlled by network ACLs.
Network ACLs Function
Function: Packet control, like passport control.
Network ACLs Role
Role: Approve or block traffic based on rules.
Security Groups Introduction
Introduction: Instance-level access control.
Default Security Group
Default: Blocks all inbound and outbound traffic.
Security Group Modification
Modification: Customize to allow specific traffic.
Security Group Analogy
Analogy: Doorman at a building entrance.
Security Group Stateful Nature
Stateful: Remembers allowed traffic.
Network ACLs Stateless Nature
Stateless: Checks every packet, no memory.